Date: Sat, 13 Apr 2013 21:48:39 +0200 From: Michael Gmelin <freebsd@grem.de> To: freebsd-ports@freebsd.org Subject: Setting fetch environment in pkg.conf (pkgng) Message-ID: <20130413214839.3d59a743@bsd64.grem.de>
next in thread | raw e-mail | index | archive | help
Hi, I recently converted a host from to pkgng and getting the following error: Checking for packages with security vulnerabilities: pkg: http://portaudit.FreeBSD.org/auditfile.tbz: No route to host pkg: Cannot fetch audit file! Portaudit was configured to use a proxy in /usr/local/etc/portaudit.conf: portaudit_fetch_env="HTTP_PROXY=http://192.168.1.2:8080/" I'm aware that pkg uses libfetch directly, but since most configuration in libfetch happens through setting environment variables, it would be great if it could be set before calls to libfetch's fetchGet* functions instead of setting it in the environment used (modify cron jobs etc.). Since there are different applications for fetch in pkg I would suggest the following settings (examples): # environment for fetching auditfile (pkg-audit(8)) audit_fetch_env = "HTTP_PROXY=http://192.168.1.2:8080/" # environment for talking to the repo (pkg-update(8), pkg-upgrade(8)...) repo_fetch_env = "SSL_CLIENT_KEY_FILE=/etc/ssl/pkgclient01.key \ SSL_CLIENT_CERT_FILE=/etc/ssl/pkgclient01.crt \ SSL_CA_CERT_FILE=/etc/ssl/pkgmaster.pem" In case there are other uses of libfetch in the code, further settings could be added - also for talking to multiple repositories. Thoughts? Cheers, Michael PS: The example for repo_fetch_env assumes that http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/175514 has been applied. -- Michael Gmelin
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20130413214839.3d59a743>